AWS Services Cheat Sheet: Comprehensive Guide to Amazon Web Services

Cheatsheets

Introduction

Amazon Web Services (AWS) is a comprehensive cloud platform offering over 200 fully-featured services from data centers globally. This cheat sheet provides a practical overview of core AWS services, their primary use cases, key features, and how they interconnect to build scalable, reliable cloud solutions.

Compute Services

ServiceDescriptionUse CasesKey Features
EC2 (Elastic Compute Cloud)Resizable virtual serversWeb applications, development environments, enterprise applicationsInstance types, AMIs, auto scaling, spot instances
LambdaServerless compute serviceMicroservices, event processing, file processingEvent-driven, pay-per-use, automatic scaling
ECS (Elastic Container Service)Container orchestration serviceMicroservices, batch processing, CI/CDTask definitions, service discovery, load balancing
EKS (Elastic Kubernetes Service)Managed Kubernetes serviceContainer orchestration, microservices architecturesKubernetes control plane, cluster autoscaling
FargateServerless compute for containersContainerized applications, microservicesNo server management, pay-per-task
BatchBatch computing serviceHigh-throughput batch jobs, data processingJob scheduling, compute environment management
LightsailSimple virtual private serversSmall websites, dev/test environmentsEasy setup, low fixed pricing
Elastic BeanstalkPaaS for web applicationsWeb applications, developer environmentsPlatform management, deployment automation
App RunnerFully managed container serviceWeb applications, APIsAutomated deployments, built-in WAF integration

EC2 Instance Types Overview

FamilyOptimized ForExamplesCommon Use Cases
TBurstable performancet3.micro, t4g.mediumDevelopment, small databases, web servers
MGeneral purposem5.large, m6g.xlargeApplication servers, gaming servers, small databases
CComputec5.large, c6g.xlargeBatch processing, scientific modeling, gaming, video encoding
RMemoryr5.large, r6g.xlargeMemory-intensive applications, in-memory databases
PGPUp3.2xlarge, p4d.24xlargeMachine learning, high-performance computing
IStoragei3.large, i3en.xlargeHigh-speed storage, data warehousing
GGraphicsg4dn.xlargeVideo rendering, 3D visualization
XMemory intensivex1.16xlarge, x2gd.mediumSAP HANA, big data processing

Storage Services

ServiceDescriptionUse CasesKey Features
S3 (Simple Storage Service)Object storage serviceStatic website hosting, backup, data lakesEleven 9’s durability, lifecycle policies, versioning
EBS (Elastic Block Store)Block storage for EC2Database storage, application hostingSSD/HDD options, snapshots, encryption
EFS (Elastic File System)Managed NFS file systemContent management, web serving, data sharingElastic capacity, shared access, regional
FSxManaged file systemsWindows workloads, HPC, machine learningWindows, Lustre, NetApp ONTAP, OpenZFS options
S3 GlacierLow-cost archive storageLong-term backups, compliance archivesDeep Archive, Flexible Retrieval, Instant Retrieval
Storage GatewayHybrid cloud storageCloud backup, disaster recoveryFile, Volume, Tape Gateway types
Snow FamilyPhysical data transportLarge data migrations, edge computingSnowcone, Snowball, Snowmobile options
BackupCentralized backup serviceCross-region backup, compliancePolicy-based, centralized management

S3 Storage Classes Comparison

Storage ClassAvailabilityRetrieval TimeMin Storage DurationUse Case
S3 Standard99.99%MillisecondsNoneFrequently accessed data
S3 Intelligent-Tiering99.9%MillisecondsNoneData with unknown/changing access patterns
S3 Standard-IA99.9%Milliseconds30 daysInfrequently accessed data
S3 One Zone-IA99.5%Milliseconds30 daysInfrequently accessed, non-critical data
S3 Glacier Instant Retrieval99.9%Milliseconds90 daysArchive data needing immediate access
S3 Glacier Flexible Retrieval99.99%Minutes to hours90 daysArchive data with flexible retrieval times
S3 Glacier Deep Archive99.99%Hours180 daysLong-term archive data, rarely accessed

Database Services

ServiceTypeUse CasesKey Features
RDS (Relational Database Service)Managed relational databasesWeb applications, ERP, CRMMulti-AZ, read replicas, automated backups
AuroraMySQL/PostgreSQL-compatibleEnterprise applications, SaaS applications5x MySQL performance, distributed storage
DynamoDBNoSQL key-value & documentMobile apps, gaming, IoTMillisecond latency, auto scaling, serverless
ElastiCacheIn-memory cachingReal-time applications, gaming leaderboardsRedis or Memcached compatible
NeptuneGraph databaseRecommendation engines, fraud detectionProperty graph & RDF support
DocumentDBMongoDB-compatible document databaseContent management, user profilesMongoDB compatibility, scalable
KeyspacesApache Cassandra-compatibleTime-series data, industrial equipment maintenanceCassandra compatibility, serverless
TimestreamTime series databaseIoT applications, DevOps monitoringAutomated data lifecycle management
QLDB (Quantum Ledger Database)Ledger databaseFinancial records, supply chainImmutable, cryptographically verifiable
RedshiftData warehouseBusiness intelligence, analyticsColumnar storage, Redshift Spectrum

Database Comparison

Database TypeAWS ServiceBest ForNot Ideal For
RelationalRDS, AuroraStructured data, ACID transactionsUnstructured data, horizontal scaling
Key-ValueDynamoDBHigh-throughput, low-latency applicationsComplex queries, joins
DocumentDocumentDBSemi-structured data, flexible schemaComplex transactions, joins
In-memoryElastiCacheCaching, session managementPersistent storage, complex queries
GraphNeptuneConnected data, complex relationshipsSimple structured data
Time SeriesTimestreamIoT data, metrics, eventsGeneral purpose applications
LedgerQLDBAuditable history, complianceHigh-throughput OLTP
ColumnarRedshiftData warehousing, analyticsOLTP workloads

Networking & Content Delivery

ServiceDescriptionUse CasesKey Features
VPC (Virtual Private Cloud)Isolated network infrastructureMulti-tier applications, regulatory complianceSubnets, route tables, NACLs, security groups
CloudFrontContent delivery network (CDN)Static and dynamic content delivery, video streamingEdge locations, field level encryption
Route 53DNS serviceDomain registration, DNS routingHealth checks, routing policies, domain registration
API GatewayAPI management serviceRESTful APIs, WebSocket APIsRequest/response transformations, authentication
Direct ConnectDedicated network connectionHybrid environments, high-throughput workloadsPrivate connectivity, reduced network costs
Transit GatewayNetwork transit hubConnecting multiple VPCs, centralized network architectureSimplified network architecture, centralized routing
Global AcceleratorNetwork layer serviceGlobal applications, gaming, IoTAnycast IP addresses, health checking
VPNVirtual private networkSecure remote access, site-to-site connectivitySite-to-Site VPN, Client VPN
App MeshService meshMicroservices monitoring, controlService-to-service communication control
Elastic Load BalancingLoad distribution serviceHigh-availability applicationsALB, NLB, GLB types

Load Balancer Types

TypeFull NameBest ForProtocol Support
ALBApplication Load BalancerHTTP/HTTPS traffic, microservicesHTTP, HTTPS, gRPC, WebSockets
NLBNetwork Load BalancerTCP/UDP traffic, extreme performanceTCP, UDP, TLS
GLBGateway Load BalancerThird-party virtual appliancesGENEVE protocol (layer 3/4)
CLBClassic Load Balancer (legacy)EC2-Classic networksTCP, SSL/TLS, HTTP, HTTPS

Integration Services

ServiceDescriptionUse CasesKey Features
SQS (Simple Queue Service)Fully managed message queuingApplication decoupling, workload processingStandard and FIFO queues, dead-letter queues
SNS (Simple Notification Service)Pub/sub messagingApplication alerts, mobile notificationsTopics, subscriptions, push notifications
EventBridge (formerly CloudWatch Events)Serverless event busEvent-driven architectures, application integrationRules, targets, event buses
MQManaged message brokerEnterprise messaging, existing application migrationActiveMQ and RabbitMQ support
Step FunctionsWorkflow orchestration serviceBusiness processes, data processing pipelinesVisual workflow editor, error handling
AppFlowIntegration serviceSaaS application integrationSalesforce, Zendesk integrations
AppSyncGraphQL interfaceMobile/web app data synchronizationReal-time updates, offline sync

Management & Monitoring

ServiceDescriptionUse CasesKey Features
CloudWatchMonitoring and observabilityApplication performance monitoring, resource utilizationMetrics, logs, alarms, dashboards
CloudTrailAPI activity monitoringSecurity analysis, compliance, troubleshootingAPI call history, log file integrity validation
ConfigResource configuration trackingCompliance auditing, change managementConfiguration history, compliance rules
Systems ManagerResource managementPatch management, automation, parameter storeRun Command, State Manager, Parameter Store
Trusted AdvisorBest practice recommendationsCost optimization, security improvementPerformance, security, cost optimization checks
OrganizationsAccount managementMulti-account strategies, centralized managementService control policies, consolidated billing
Control TowerLanding zone setupEnterprise cloud setup, governanceAccount factory, guardrails
CloudFormationInfrastructure as codeEnvironment provisioning, resource standardizationTemplates, stacks, change sets
Service CatalogService portfolio managementSelf-service provisioning, compliancePortfolios, products, constraints
Cost ExplorerCost managementCost analysis, budgetingReports, forecasting, rightsizing recommendations
License ManagerSoftware license managementLicense compliance, optimizationLicense rules, usage tracking
Managed GrafanaVisualization serviceOperational dashboards, metrics visualizationGrafana compatibility, built-in data sources
Managed Service for PrometheusMonitoring for container environmentsKubernetes monitoring, microservices monitoringPrometheus compatibility, long-term storage

Security, Identity & Compliance

ServiceDescriptionUse CasesKey Features
IAM (Identity & Access Management)Identity managementAccess control, permission managementUsers, groups, roles, policies
CognitoCustomer identity managementUser signup/signin, social identity federationUser pools, identity pools
GuardDutyThreat detection serviceSecurity monitoring, malicious activity detectionAnomaly detection, automated response
InspectorVulnerability assessmentSecurity assessments, compliance verificationNetwork accessibility scans, host assessments
MacieData security & privacyPII detection, data classificationAutomated sensitive data discovery
Security HubSecurity posture managementCentralized security view, compliance checksIntegration with security tools, automated checks
WAF (Web Application Firewall)Web traffic filteringCross-site scripting protection, geo-restrictionsRules, IP filtering, rate limiting
ShieldDDoS protectionProtection against network/transport layer attacksStandard (free), Advanced (paid)
Firewall ManagerSecurity policy managementCentralized rule managementAWS WAF, Shield, Security Groups management
KMS (Key Management Service)Encryption key managementData encryption, cryptographic operationsCustomer master keys, key rotation
CloudHSMHardware security modulesRegulatory compliance, cryptographic operationsFIPS 140-2 Level 3 validation
Secrets ManagerSecrets managementDatabase credentials, API keysSecret rotation, secure storage
Certificate ManagerSSL/TLS certificate managementHTTPS security, certificate provisioningCertificate issuance, renewal, deployment
Directory ServiceManaged Active DirectoryWindows workload integration, LDAP authenticationAWS Managed Microsoft AD, Simple AD
IAM Identity Center (formerly SSO)Single sign-on serviceCentralized access managementSAML integration, permission sets
ArtifactCompliance documentationAudit support, compliance verificationOn-demand access to compliance reports

Analytics & Big Data

ServiceDescriptionUse CasesKey Features
AthenaInteractive query serviceLog analysis, ad-hoc queriesServerless, SQL, pay-per-query
EMR (Elastic MapReduce)Big data processingData transformation, machine learningHadoop, Spark, HBase
KinesisReal-time data streamingApplication monitoring, analytics, IoTData Streams, Data Firehose, Video Streams
QuickSightBusiness intelligenceDashboards, visualizationsML-powered insights, embedded analytics
GlueETL serviceData preparation, schema discoveryData Catalog, crawlers, ETL jobs
Lake FormationData lake serviceCentralized data lake managementSecure data sharing, fine-grained access control
OpenSearch Service (formerly Elasticsearch)Search and analyticsLog analytics, application monitoringFull-text search, visualizations
Data ExchangeData marketplaceData acquisition, monetizationThird-party data sets, subscription management
Data PipelineData orchestrationData-driven workflowsTask dependencies, activity scheduling
MSK (Managed Streaming for Kafka)Managed Kafka serviceStream processing, metrics collectionKafka compatibility, serverless option

Machine Learning & AI

ServiceDescriptionUse CasesKey Features
SageMakerEnd-to-end ML platformModel training/deployment, MLOpsNotebooks, automated ML, deployment options
ComprehendNatural language processingSentiment analysis, entity recognitionLanguage detection, key phrase extraction
RekognitionImage/video analysisObject detection, facial analysisImage moderation, celebrity recognition
PollyText-to-speechAccessibility features, interactive voice responseNatural-sounding voices, SSML support
TranscribeSpeech-to-textCall analytics, content transcriptionReal-time transcription, medical transcription
TranslateMachine translationContent localization, cross-language communicationNeural machine translation, batch translation
LexConversational interfacesChatbots, voice assistantsNLU, dialog management
KendraEnterprise searchDocument search, knowledge basesNatural language queries, semantic search
PersonalizeRecommendation engineProduct recommendations, content personalizationReal-time recommendations, A/B testing
ForecastTime-series forecastingInventory planning, resource allocationAutoML forecasting, what-if analysis
TextractDocument text extractionForm processing, document digitizationOCR, form extraction, table extraction
DeepRacerReinforcement learningML education, autonomous racing3D racing simulator, competitions
BedrockFoundation modelsGenerative AI applicationsFoundation models APIs, guardrails

Developer Tools

ServiceDescriptionUse CasesKey Features
CodeCommitSource control serviceCode storage, version controlGit repositories, pull requests
CodeBuildBuild serviceCompile code, run testsEnvironment customization, build specifications
CodeDeployDeployment serviceApplication deployment automationBlue/green deployments, rollbacks
CodePipelineCI/CD serviceRelease automation, workflow orchestrationPipeline visualization, integrations
CodeStarProject managementEnd-to-end development projectsProject templates, team management
Cloud9Cloud IDERemote development, pair programmingCollaborative editing, terminal access
X-RayApplication tracingRequest tracing, performance analysisService maps, trace analysis
CodeArtifactArtifact repositoryPackage management, dependency controlMaven, npm, PyPI, NuGet support
CodeGuruCode review and profilingCode quality, performance optimizationML-based recommendations, profiling
AmplifyWeb/mobile app hostingFull-stack applications, frontend hostingCI/CD, authentication, storage
AppConfigFeature flaggingFeature deployment, A/B testingStaged rollouts, configuration profiles

Mobile & Front-End Web

ServiceDescriptionUse CasesKey Features
AmplifyMobile and web app developmentFull-stack applications, frontend hostingAuthentication, storage, APIs
AppSyncGraphQL API serviceReal-time applications, offline-first appsReal-time updates, offline data sync
Device FarmApp testing serviceCross-device testing, browser compatibilityPhysical devices, automation
Location ServiceLocation-based serviceMapping applications, asset trackingMaps, geocoding, routing
PinpointCustomer engagement serviceMarketing campaigns, targeted messagingSegmentation, analytics, personalization

IoT Services

ServiceDescriptionUse CasesKey Features
IoT CoreIoT connectivity serviceDevice connection, message processingMQTT/HTTP protocols, authentication
IoT AnalyticsIoT data analysisOperational insights, predictive maintenanceData collection, preprocessing, storage
IoT EventsEvent detection serviceEquipment monitoring, process notificationsEvent detection, alert notifications
IoT SiteWiseIndustrial IoT serviceIndustrial equipment monitoringAsset modeling, data collection
IoT GreengrassEdge computingLocal processing, offline operationLambda at the edge, local messaging
IoT FleetWiseVehicle data collectionFleet management, vehicle diagnosticsStandardized data collection, transformation
IoT TwinMakerDigital twin serviceVirtual representations of physical assets3D visualization, real-time updates

Serverless Services Ecosystem

CategoryServices
ComputeLambda, Fargate
StorageS3, DynamoDB
API ManagementAPI Gateway, AppSync
IntegrationEventBridge, SQS, SNS, Step Functions
Developer ToolsSAM, Amplify, Cloud9
MonitoringCloudWatch, X-Ray
DatabaseDynamoDB, Aurora Serverless

Common Solutions Architecture Patterns

Web Application Hosting

Components: EC2 or Elastic Beanstalk, ALB, RDS, ElastiCache, CloudFront

Architecture:

  1. Route 53 for DNS routing
  2. CloudFront as CDN for static assets
  3. Application Load Balancer to distribute traffic
  4. EC2 instances in Auto Scaling Group for application tier
  5. RDS for database tier
  6. ElastiCache for session storage or caching

Microservices Architecture

Components: ECS/EKS, API Gateway, DynamoDB, SNS/SQS, Lambda

Architecture:

  1. API Gateway as the entry point for service requests
  2. ECS/EKS for containerized microservices
  3. DynamoDB for data storage
  4. SNS/SQS for service communication
  5. Lambda for event processing

Data Lake Architecture

Components: S3, Glue, Athena, Redshift, QuickSight

Architecture:

  1. S3 as central data repository
  2. Kinesis for real-time data ingestion
  3. Glue for cataloging and ETL
  4. Athena for interactive queries
  5. Redshift for data warehousing
  6. QuickSight for visualization

Event-Driven Architecture

Components: EventBridge, Lambda, SNS, SQS, Step Functions

Architecture:

  1. EventBridge to capture and route events
  2. Lambda for event processing
  3. SNS for fan-out pattern
  4. SQS for decoupling components
  5. Step Functions for complex workflows

AWS Regions & Availability Zones

  • Region: Geographic area containing multiple Availability Zones
  • Availability Zone (AZ): Isolated locations within a region, connected with low-latency links
  • Local Zone: Extension of a region closer to end users
  • Wavelength Zone: Infrastructure for edge computing with 5G networks
  • Outpost: AWS infrastructure deployed on-premises

Multi-Region Design Considerations

  • Data residency and compliance
  • Disaster recovery and business continuity
  • Latency and performance
  • Regional service availability

Multi-AZ Design Considerations

  • High availability
  • Fault tolerance
  • Service-specific multi-AZ capabilities
  • Data replication strategies

AWS Pricing Models

ModelDescriptionBest For
On-DemandPay for what you useVariable workloads, short-term projects
Reserved Instances1 or 3-year commitmentSteady-state workloads
Savings PlansCommitment to spendMixed workloads across services
Spot InstancesBid for unused capacityFault-tolerant, flexible workloads
Dedicated HostsPhysical servers dedicated to youCompliance, licensing requirements

Cost Optimization Strategies

  1. Right-sizing: Choosing the appropriate instance size
  2. Purchasing options: Reserved Instances, Savings Plans
  3. Monitoring and analyzing spend with Cost Explorer
  4. Implementing auto-scaling based on demand
  5. Using S3 storage classes appropriately
  6. Implementing lifecycle policies for data
  7. Using AWS Graviton (ARM-based) instances for better price-performance

AWS Well-Architected Framework

PillarFocusKey Considerations
Operational ExcellenceOperations and monitoringInfrastructure as code, observability, automation
SecurityData and infrastructure protectionIdentity management, detection, infrastructure protection
ReliabilitySystem recovery and availabilityFault isolation, backup/restore, scaling, testing
Performance EfficiencyResource optimizationCompute solutions, data storage, architecture, trade-offs
Cost OptimizationAvoid unnecessary costsRight-sizing, elasticity, pricing models, optimization
SustainabilityMinimizing environmental impactEfficient resource usage, demand alignment, software efficiency

Resources for Further Learning

Related Posts

Subscribe
Subscribe
Scroll to Top